Jeroen Geilman wrote:
On 07/03/2010 09:14 PM, Charles Marcus wrote:
On 2010-07-02 7:20 PM, Asai wrote:
OK. Has anyone successfully been able to work around this issue?
The only way is to have the admin for the CISCO PIX disable the stupid
smtp fixup garbage on the CISCO box.
As far as I know, there is NEVER any reason to have this enabled on an
internet facing box that receives mail from 'wherever'...
"fixup protocol smtp" on a Cisco PIX firewall does several things:
1. it inspects every single SMTP packet it sees
2. it disallows all but the SMTP commands explicitly stated in RFC
[8|28|53]21
and
3. it replaces the SMTP greeting banner with a generic one
It is obviously the latter you have an issue with :)
While I agree that it should never be enabled *by default*, it's
hardly stupid, predating modern anti-spam measures such as
policydaemons and DNSBLs by at least 10 years.
J.
Thank you for your responses.
Is there anything I can do on my end? As far as the SMTP greeting banner?
--
asai
